All jobs

Cloud Security Solution Architect

Bank of America1d ago
United StatesOnsiteFull-timeMid Level5+ yrs exp
H-1B sponsor

Top focus

Security ArchitectCloud ArchitectCloud Security EngineerCloud EngineerSecurity Engineer

Job Description

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work and providing a culture of caring is core to how we drive Responsible Growth. We are intentional about fostering an inclusive workplace where every teammate has the opportunity to succeed, build a career and contribute to our shared success.

This includes attracting and developing exceptional talent, recognizing and rewarding performance, and supporting our teammates’ physical, emotional, and financial wellness through affordable, competitive and flexible benefits. We value the unique perspectives individuals bring from all backgrounds and career paths - whether shaped by military service, community college education, or a wide range of work and life experiences.

These journeys foster resilience, leadership and innovation, strengthening our workforce and positively impact the communities we serve. Bank of America is committed to an in-office culture that supports collaboration, engagement, and career development.

Our approach includes clear in-office expectations, while providing an appropriate level of flexibility based on role-specific responsibilities and business needs. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact.

Join us! Position Summary We are seeking an experienced Cloud Security Solution Architect to join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation, architecture, engineering, solutions and capabilities development, cyber resiliency, access management, data strategy, deployment maintenance, technical project management, and information technology security control support.

The Cloud Security Solution Architect is responsible for designing, strengthening, and securing the Bank’s use of external and hybrid cloud platforms and services, ensuring a robust and resilient cloud security posture. This role partners closely with Lines of Business and CIO teams to drive continuous improvement in security adherence and standards.

The Solution Architect will design, identify, and document inefficiencies with possible improvement opportunities across Cloud related projects. Additionally, the role also will actively apply knowledge of laws, rules, regulations, and information security concepts (e.g., NIST, ISO, CIS, CSA, SOC 2, PCI, COBIT, ISO, OWASP) to establish and maintain information security policies and standards.

Job expectations include working with information security engineering and product teams to identify risk gaps and direct the overall Cloud security strategy. Responsibilities Design and deliver secure cloud solutions across IaaS, PaaS, and SaaS, leveraging existing security patterns aligned to business needs.

Define secure architectures for hybrid environments, ensuring integration between external cloud platforms and internal systems. Lead end-to-end solution design, including requirements definition, risk identification, and alignment with application security policies.

Collaborate with cloud development partners and cross-functional security teams to establish and promote best practices in platform engineering, operations, governance, and design patterns. Maintain thought leadership by staying current on emerging technologies, industry trends, and associated risks.

Own and maintain product design documentation, reference architectures, and portfolio-level blueprints for application security platforms. Provide expert guidance on security design, standards, and operational practices. Drive architecture governance discussions by developing artifacts and influencing key decisions.

Communicate risks, challenges, and solutions effectively to engineering, operations, risk partners, and senior leadership. Required Qualifications Knowledge and understanding of Cloud Security specific laws, rules, regulations, and Guidelines, such as NIST, ISO, CIS, CSA, SOC 2, PCI, COBIT, ISO, OWASP, etc., relevant to the financial services sector.

Possession of CISSP certification would be an advantage. Demonstrates broad knowledge and inherent risks of modern IT hosting, such as public cloud services from all major Cloud Providers, SaaS applications, Kubernetes, serverless, and Infrastructure as Code.

Knowledge of, and how to secure the use of, AI solutions from major Cloud Providers Experience with Cloud Provider native and industry leading third party security tools that deliver various aspects of a Cloud Native Application Protection Platform, like CSPM and CIEM Knowledge of software development lifecycle related tools and methodologies which support automated orchestration and security compliance integration within different pipeline solutions would be an advantage. 5+ years relevant hands-on experience in application security fields in a large and complex organization.

Security knowledge covering core technology infrastructure, cloud technologies, AI, and application security practices. Proficient in articulating facts and data-driven plans, and ability to partner with stakeholders to implement intended solutions to drive risk reductions and adherence to relevant cloud security frameworks.

Strong attention to detail and advanced analytical skills. Excellent communication and presentation skills. Excellent organizational skills and be able to effectively prioritize multiple tasks. Hands on experience and involvement in large and complex projects.

Proficient in data management which includes strong data analytical capabilities with advanced understanding of the collection and management of metadata

Job Description

This job is responsible for defining an architectural vision and solution that supports the strategic outcomes of the Business' Products and Services. Key responsibilities include defining the target operating environment, designing for client resiliency, assisting with solution design, and defining non-functional requirements.

Job expectations include working with stakeholders and service providers aligned to the Business' strategic objectives, evaluating the impact of strategic design decisions, and contributing to the architecture roadmap

Responsibilities

  • Works across the business, operations and technology to create the solution intent and architectural vision for complex solutions and prioritize functional and non-functional requirements into a technology backlog to enable the technology roadmap and functionality to support evolving capabilities and services Contributes to the creation of the architecture roadmap of defined domains (Business, Application, Data
  • Technology) in support of the product roadmap and the development of best practices including standardized templates Clarifies the architecture, assists with system design to support implementation
  • provides solution options to resolve any architectural impediments Facilitates solution driven discussions, leads the design of complex architectures
  • finds creative solutions through knowledge of domain, practical experiments
  • proof of concepts while ensuring architecture is flexible, modular
  • adaptable Educates team members on the technology practices, standardization strategies
  • best practices to create innovative solutions Supports the team as needed to select the technology stack required for solutions and helps select preferred technology products Performs design and code reviews to ensure all non-functional requirements are sufficiently met (for example, security, performance, maintainability, scalability, usability
  • reliability) Skills: Analytical Thinking Architecture Result Orientation Solution Design Technical Strategy Development Application Development Collaboration Data Management DevOps Practices Risk Management Agile Practices Automation Influence Solution Delivery Process Test Engineering Shift: 1st shift (United States of America) Hours Per Week: 40 Pay Transparency details US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842), US - IL - Chicago - 540 W Madison St - Bank Of America Plaza (IL4540) Pay and benefits information Pay range $140,500.00 - $205,000.00 annualized salary, offers to be determined based on experience, education and skill set.
  • Discretionary incentive eligible This role is eligible to participate in the annual discretionary plan.
  • Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group
  • and the overall success of the Company.
  • Benefits This role is currently benefits eligible.
  • We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Required skills

Cloud SecurityNISTISOCISCSASOC 2PCICOBITOWASPKubernetesInfrastructure as CodeCSPMCIEM
Posted on JobRush — the end-to-end AI job-search platform.